AsyncAPI npm packages infected with credential-stealing malware
AsyncAPI npm packages were infected with credential-stealing malware, according to BleepingComputer. The malicious packages targeted users of the AsyncAPI specification, potentially compromising sensitive credentials. Developers who installed the compromised packages may have had their credentials stolen.
Developers using AsyncAPI npm packages risk credential theft from supply chain malware.


